REMARKS 

The Office Action dated June 15, 2004 has been received and carefully noted. The 
above amendments to the claims, and the following remarks, are submitted as a full and 
complete response thereto. 

Claims 1 and 10 have been amended to more particularly point out and distinctly 
claim the subject matter of the invention. No new matter has been added, and no new 
issues are raised which require further consideration or search. Claims 1-17 are currently 
pending and are respectfully submitted for consideration. 

Claims 1-17 were rejected under 35 U.S.C. 102(e) as being anticipated by 
Rowland (U.S. Patent No. 6,405,318). The Official Action took the position that 
Rowland teaches all of the elements disclosed in the claimed invention. Applicants 
respectfully submit that the presently pending claims recite subject matter that is neither 
disclosed nor suggested in the prior art. Therefore, the rejection is respectfully traversed 
and reconsideration is respectfully requested for the reasons which follow. 

Independent claim 1, upon which claims 2-9 are dependant, recites a method for 
dynamically modifying access right profiles of users in the operating system of a 
computer system. The method includes the steps of defining in the computer system 
access right profiles having individual command rights to the operating system of the 
computer system. The method further includes the steps of recognizing the need for 
modification of at least one of the defined access right profiles in the computer system, 
wherein the need for modifying the access right profile is triggered by prevailing 
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circumstances of the computer system. The method also includes reading the information 
contained in the defined access right profiles in the computer system, establishing based 
on the information contained in the access right profiles and the prevailing circumstances 
of the computer system which access right profiles have to be modified, and modifying at 
least one of the access right profiles dynamically as necessary according to the prevailing 
circumstances. 

Independent claim 10, upon which claims 11-17 are dependant, recites a system 
for dynamic modification of access right profiles of users in the operating system of a 
computer system, in which access right profiles having individual command rights 
regarding the operating system of the computer system have been defined. The system 
comprises a means for recognizing the need for modification of at least one of the defined 
access right profiles in the computer system, wherein the need for modifying the access 
right profile is triggered by prevailing circumstances of the computer system. The system 
further includes a means for reading the information contained in the defined access right 
profiles in the computer system, a means for establishing based on the information 
contained in the access right profiles and the prevailing circumstances of the computer 
system which access right profiles have to be modified, and a means for modifying at 
least one of the access right profiles dynamically as necessary according to the prevailing 
circumstances. 

As will be discussed below, the currently pending claims recite subject matter 
which is neither disclosed nor suggested in Rowland. 

-8- 



Rowland discloses an intrusion detection method and system. The system 
automatically and dynamically builds user profile data that can be used to determine 
normal actions for each user. The user profile data is saved and updated every time the 
user logs on to the system. The system detects suspicious actions, determines the source, 
and institutes autonomous responses. The system mitigates the effects of an intrusion and 
prevents future actions without waiting for human intervention. 

Consequently, Rowland discloses a system for detecting an intrusion to a 
computer system. According to Rowland, users logged into the computer system are 
monitored in real time by comparing a user's behaviors with a user profile which is 
generated based on the user's past actions in the computer system. The user profile is 
created is created after ten logins, for example, and it is dynamically updated on each 
login and logout event. Characteristic or normal behavior for a user is specified based on 
previous actions of the user in the computer system. If the user behavior clearly differs 
from previous sessions, the system regards the user as an intruder and may then set 
limitations upon the user's actions. For instance, if the user logs into the system at an 
unusual time of day or for an unusually long or short period of time, the access of the 
user to the computer system may be blocked. 

The contents of the user profile according to Rowland are different fi-om the 
access right profile recited in the present claims. In Rowland, the user profile includes 
information on the behavior of the user. According to the claimed invention, however, 
the access right profile determines access control and run rights of commands. 
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Specifically, claim 1 of the pending application, includes the step of "defining in the 
computer system access right profiles having individual command rights to the operating 
system of the computer system." Thus, the access right profile in the pending application 
includes data defining command class-specific powers, validity period of the password, 
and level of access to the MML command log. The user profile of Rowland does not 
contain access controls or run rights for commands; rather it merely describes the user's 
behavior while they are logged on to the system. Thus, the access right profiles recited in 
the claimed invention is not disclosed in the cited prior art. 

Another significant element of the claimed invention, which is not taught by 
Rowland, is the manner and timing of the modification to the access right profile. 
Rowland automatically updates the user profile every time the user logs into the system 
or out of the system. The method recited in claim 1 of the pending application, however, 
includes the steps of "recognizing the need for modification of at least one of the defined 
access right profiles in the computer system, wherein the need for modifying the access 
right profile is triggered by prevailing circumstances of the computer system; reading the 
information contained in the defined access right profiles in the computer system; 
establishing, based on the information contained in the access right profiles and the 
prevailing circumstances of the computer system, which access right profiles have to be 
modified; and modifying at least one of the access right profiles dynamically according to 
the prevailing circumstances." The computer system of the claimed invention 
automatically recognizes the need for a change in the access right profile, and therefore 
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the need to update is separately identified. Recognition by the system will occur when an 
event takes place that triggers the need for a change in the access right profile. Next, the 
access right profile is read to determine which specific access right profile needs to be 
changed. Then the access right profiles are changed dynamically as required. 

Rowland, on the other hand, does not mention that the information in all the user 
profiles is checked and altered simultaneously according to the prevailing circumstances 
of the computer system. In the present claims, the need to modify user access profiles 
does not necessarily apply to all access right profiles, rather the modification is based on 
the information in the access right profiles and the prevailing circumstances of the 
computer system. The need to modify access right profiles is triggered by, for example, 
the time of day, the utilization rate of the system, or a given alarm situation. Rowland 
does not disclose that the user profile is modified based on the prevailing circumstances 
of the system. Rather, Rowland discloses that the user's actions are prevented only if the 
user's behavior in the system clearly differs fi-om the present user profile and the user is 
therefore considered an intruder. 

For at least the reasons discussed above, Rowland does not disclose all of the 
elements of claims 1 and 10, and therefore Rowland does not anticipate the claimed 
invention. Additionally, Applicants submit that claims 2-9 and 1 1-17 are dependent upon 
claims 1 and 10, respectively. Therefore, claims 2-9 and 11-17 should also be found 
allowable for at least their dependence upon claims 1 and 10, and for the specific 
limitations recited therein. 
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Applicants respectfully submit that Rowland fails to disclose or suggest critical 
and important elements of the claimed invention. These distinctions are more than 
sufficient to render the claimed invention unanticipated and unobvious. It is therefore 
respectfully requested that all of claims 1-17 be allowed, and this application passed to 
issue. 

If for any reason the Examiner determines that the application is not now in 
condition for allowance, it is respectfully requested that the Examiner contact, by 
telephone, the applicants' undersigned attorney at the indicated telephone number to 
arrange for an interview to expedite the disposition of this application. 

In the event this paper is not being timely filed, the applicant respectfully petitions 
for an appropriate extension of time. Any fees for such an extension together with any 
additional fees may be charged to Counsel's Deposit Account 50-2222. 
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